Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/F68E217F69DE99D52AB3B6385D134B93C3D4D8260F1E24C0231493E89C2FF10F/0/3137302e3233332e37322e302f32322d3234203d3e203336353131.roa
File: 3137302e3233332e37322e302f32322d3234203d3e203336353131.roa (raw, json)
Hash identifier: RRAxnsfzAw5KVzxIp6GnbQhmBNl6SY72qBxe4uPzAD4=
Subject key identifier: 17:03:17:52:53:A3:F0:31:68:F8:75:53:49:09:F9:7D:2F:63:AA:82
Certificate issuer: /CN=9651F1E4B6480D19626E784CA1A8F0ABC94C1487
Certificate serial: 3B1B563B29659956187DDDC832A72E679652DA88
Authority key identifier: 96:51:F1:E4:B6:48:0D:19:62:6E:78:4C:A1:A8:F0:AB:C9:4C:14:87
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/9651F1E4B6480D19626E784CA1A8F0ABC94C1487.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/F68E217F69DE99D52AB3B6385D134B93C3D4D8260F1E24C0231493E89C2FF10F/0/3137302e3233332e37322e302f32322d3234203d3e203336353131.roa
Signing time: Tue 30 Apr 2024 20:05:00 +0000
ROA not before: Tue 30 Apr 2024 20:00:00 +0000
ROA not after: Tue 29 Apr 2025 20:05:00 +0000
asID: 36511
IP address blocks: 170.233.72.0/22 maxlen: 24
Validation: Failed, certificate revoked on Fri 03 May 2024 14:05:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3b:1b:56:3b:29:65:99:56:18:7d:dd:c8:32:a7:2e:67:96:52:da:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9651F1E4B6480D19626E784CA1A8F0ABC94C1487
Validity
Not Before: Apr 30 20:00:00 2024 GMT
Not After : Apr 29 20:05:00 2025 GMT
Subject: CN=1703175253A3F03168F875534909F97D2F63AA82
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:bb:03:1e:8f:f4:cd:bd:11:01:75:3b:b2:62:
94:19:3d:74:24:d6:4b:ba:9d:a8:39:94:bc:69:a3:
94:2b:c5:19:73:20:dd:b4:9c:1b:2c:bd:f8:e7:66:
95:74:98:5f:5f:b6:0d:28:3f:c5:d6:1b:0c:45:d3:
fe:4e:a1:90:69:00:14:dd:57:df:b8:da:c6:f3:2e:
77:b1:b7:ce:06:c1:01:43:d7:14:a8:6d:47:0b:73:
5d:e3:3d:63:d0:fe:6e:61:ad:6f:e3:1f:91:c0:68:
15:ce:6e:a8:5a:36:92:64:e0:ac:3e:7b:2b:7b:0b:
75:98:2b:5a:79:ca:3e:41:42:60:01:98:77:5f:83:
e2:c9:3d:87:a8:09:17:32:31:72:d4:80:47:a1:77:
2b:0b:27:36:6a:16:b8:ef:6e:45:47:e1:b5:91:00:
a3:27:03:d6:fc:15:34:66:ed:b9:df:5f:22:0e:a4:
0b:b4:6a:88:cb:33:e4:c0:11:3d:d3:0e:a1:40:f3:
72:28:1b:fa:a0:78:f6:03:2c:a5:9c:d2:ec:64:40:
28:a9:8c:c6:50:ec:f6:3f:41:e2:c0:28:c6:7a:7b:
97:59:e2:a8:df:90:c5:7a:74:eb:af:f8:dc:3a:02:
30:16:50:0f:ab:c7:d3:c8:15:cf:ed:ee:b3:36:9e:
15:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:03:17:52:53:A3:F0:31:68:F8:75:53:49:09:F9:7D:2F:63:AA:82
X509v3 Authority Key Identifier:
keyid:96:51:F1:E4:B6:48:0D:19:62:6E:78:4C:A1:A8:F0:AB:C9:4C:14:87
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/F68E217F69DE99D52AB3B6385D134B93C3D4D8260F1E24C0231493E89C2FF10F/0/9651F1E4B6480D19626E784CA1A8F0ABC94C1487.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/9651F1E4B6480D19626E784CA1A8F0ABC94C1487.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/F68E217F69DE99D52AB3B6385D134B93C3D4D8260F1E24C0231493E89C2FF10F/0/3137302e3233332e37322e302f32322d3234203d3e203336353131.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
170.233.72.0/22
Signature Algorithm: sha256WithRSAEncryption
9b:48:04:0f:f3:2f:ba:34:ca:60:74:ec:ca:88:c9:dd:3f:7a:
99:de:27:7b:17:cc:35:d1:5d:f1:a5:d9:46:eb:ec:c0:cf:84:
ff:1f:79:ed:c6:8c:ca:85:ea:a9:c3:82:68:27:60:f3:75:b9:
1d:80:77:3e:0d:82:0b:87:79:4c:2e:d2:46:90:42:96:ae:b1:
05:5a:67:1d:f5:02:c2:24:6b:4a:be:32:05:0f:50:c6:ee:22:
78:1a:12:cb:4c:20:d2:ba:4b:1d:82:5a:19:41:40:a5:09:d1:
69:22:1e:7a:ef:e4:40:55:1b:e9:8f:55:a7:59:65:4c:79:84:
20:80:d3:17:36:c4:c6:9e:18:63:71:a9:5c:5a:98:c3:82:e4:
e1:54:37:14:56:3f:fd:3d:1b:7a:85:80:2f:58:f5:d5:5d:57:
75:57:8f:f9:7a:03:8b:86:7f:d5:ff:00:4f:38:3e:9d:cc:b2:
c0:d1:5c:45:57:85:97:04:1e:54:50:4e:fb:64:29:11:27:01:
f3:1a:45:36:94:ce:ac:ab:86:99:41:b6:4f:71:2d:44:ac:3d:
f3:4d:ff:30:63:fe:ba:fa:dd:57:59:9d:d8:5a:19:a6:94:61:
7a:22:41:4f:92:6d:3e:74:80:13:d2:66:d4:af:fd:d1:e0:75:
7a:42:5b:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:59 2024 by rpki-client on console-fra.rpki-client.org